$ rpki-client -vvf rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.mft File: mWsZb8o8chhx7p4UE5Mri1DtCas.mft (raw, json) Hash identifier: q4uEbPqhzUepV5s9mRdDxty3qUTassG68GyUSBMnQpk= Subject key identifier: C9:09:07:CC:B9:B2:5D:5C:76:49:55:9E:C2:60:5B:77:EB:D2:14:0E Authority key identifier: 99:6B:19:6F:CA:3C:72:18:71:EE:9E:14:13:93:2B:8B:50:ED:09:AB Certificate issuer: /CN=A91164D3/serialNumber=996B196FCA3C721871EE9E1413932B8B50ED09AB Certificate serial: C2 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mWsZb8o8chhx7p4UE5Mri1DtCas.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.mft Manifest number: C0 Signing time: Thu 03 Jul 2025 06:01:14 +0000 Manifest this update: Thu 03 Jul 2025 06:01:13 +0000 Manifest next update: Thu 10 Jul 2025 06:01:13 +0000 Files and hashes: 1: mWsZb8o8chhx7p4UE5Mri1DtCas.crl (hash: o99NX8DupSv/WPlLp60toq0dMidMztNgBV3za1CdgZU=) 2: 934F8250338A11EFB9C7A738C4F9AE02.roa (hash: FWDEQfcrySfMIWIlPkoTcMajRo2lEM/ZyKql4949RJE=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.crl rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mWsZb8o8chhx7p4UE5Mri1DtCas.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 10 Jul 2025 03:15:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 194 (0xc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91164D3, serialNumber=996B196FCA3C721871EE9E1413932B8B50ED09AB Validity Not Before: Jul 3 06:01:13 2025 GMT Not After : Jul 10 06:01:13 2025 GMT Subject: CN=68661caa-a2a1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:01:e8:a6:80:fa:85:fe:b8:81:e5:4f:fb:fe: 8e:fb:93:71:37:06:42:f3:46:c5:f1:17:75:b9:d9: 21:af:0a:02:c2:9c:8e:2c:20:b9:73:36:c2:1e:f8: 47:a9:2f:cb:aa:5d:52:b8:b9:49:1a:bf:05:49:82: 77:32:ab:ad:8c:35:68:cf:49:e1:02:5b:bd:0e:0f: 48:a6:d3:91:60:14:09:54:21:ee:f5:91:e3:02:5a: 40:7a:96:5d:a7:e1:41:56:c2:ff:6e:0b:c5:d5:d0: f5:03:57:9e:00:a2:65:16:ff:ca:12:42:98:fd:d1: 11:fa:b0:8b:2b:8a:f9:8c:19:8a:69:20:8b:b6:8c: 88:61:24:0a:c1:23:76:ad:4a:fc:3b:3b:91:5c:9e: 59:ef:86:38:72:d5:29:9d:ea:3c:f8:c4:53:9c:80: d8:18:d3:40:08:d3:da:b1:61:bf:24:53:0b:df:f9: 4c:3d:4e:c4:f7:17:47:98:ab:b2:1f:cf:1e:cd:ac: 8d:0b:aa:30:55:66:fb:e5:4c:84:32:e1:81:a8:83: 95:5c:0c:35:49:e8:eb:23:2f:7a:54:2e:f8:40:ef: bd:05:e5:f0:54:1d:33:be:5b:a9:94:f5:5f:bc:1e: ce:87:a0:2f:c6:77:b7:25:01:db:10:67:1d:5b:f6: 0b:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:09:07:CC:B9:B2:5D:5C:76:49:55:9E:C2:60:5B:77:EB:D2:14:0E X509v3 Authority Key Identifier: keyid:99:6B:19:6F:CA:3C:72:18:71:EE:9E:14:13:93:2B:8B:50:ED:09:AB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/mWsZb8o8chhx7p4UE5Mri1DtCas.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91164D3/155048EA338911EF99FD1C27C4F9AE02/mWsZb8o8chhx7p4UE5Mri1DtCas.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 21:4c:1b:9e:a6:19:7d:59:e6:cd:3b:b6:15:b7:5e:8b:8c:bc: 30:7e:68:52:ac:01:45:f7:e6:35:8e:26:10:f3:3d:8c:59:ef: 54:22:7e:b5:5a:be:56:bc:1b:fb:f3:c7:53:2f:47:82:2d:bc: 57:72:96:90:25:76:49:b9:1d:69:dd:40:7a:6d:41:79:bf:98: 6b:b5:cf:ee:83:20:24:4d:ff:d7:fa:de:87:0e:75:2b:e6:91: 18:ad:1b:62:73:91:83:5b:52:1c:c0:78:94:80:6e:66:e1:4b: 4b:0f:fb:52:eb:2e:3c:24:4d:97:eb:5b:bb:af:d5:00:c7:2d: 13:c2:fd:96:52:d1:12:fc:1f:3d:89:f9:93:47:1a:a8:43:c0: f6:7c:26:91:f6:dc:b7:c4:07:45:58:f3:d9:fd:01:e4:89:58: 96:a3:9f:60:a5:19:2d:21:c1:d9:59:cd:87:6c:0d:d2:eb:f7: f3:53:01:5b:7b:1a:43:6a:17:4f:a0:30:3b:77:c6:ec:7b:51: 70:a1:88:43:20:fd:80:15:5d:5b:a4:95:9e:24:1d:65:7d:47: 64:fd:8d:98:34:e2:c6:96:c1:01:4e:21:cb:1e:96:1c:55:cf: 1a:c0:7a:5c:a2:90:b4:6a:59:02:ec:80:80:26:b8:1c:85:25: 73:a2:37:5e -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICAMIwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx MTY0RDMxMTAvBgNVBAUTKDk5NkIxOTZGQ0EzQzcyMTg3MUVFOUUxNDEzOTMyQjhC NTBFRDA5QUIwHhcNMjUwNzAzMDYwMTEzWhcNMjUwNzEwMDYwMTEzWjAYMRYwFAYD VQQDEw02ODY2MWNhYS1hMmExMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA2wHopoD6hf64geVP+/6O+5NxNwZC80bF8Rd1udkhrwoCwpyOLCC5czbCHvhH qS/Lql1SuLlJGr8FSYJ3MqutjDVoz0nhAlu9Dg9IptORYBQJVCHu9ZHjAlpAepZd p+FBVsL/bgvF1dD1A1eeAKJlFv/KEkKY/dER+rCLK4r5jBmKaSCLtoyIYSQKwSN2 rUr8OzuRXJ5Z74Y4ctUpneo8+MRTnIDYGNNACNPasWG/JFML3/lMPU7E9xdHmKuy H88ezayNC6owVWb75UyEMuGBqIOVXAw1SejrIy96VC74QO+9BeXwVB0zvluplPVf vB7Oh6Avxne3JQHbEGcdW/YLMQIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMkJB8y5 sl1cdklVnsJgW3fr0hQOMB8GA1UdIwQYMBaAFJlrGW/KPHIYce6eFBOTK4tQ7Qmr MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTExNjREMy8xNTUwNDhFQTMz ODkxMUVGOTlGRDFDMjdDNEY5QUUwMi9tV3NaYjhvOGNoaHg3cDRVRTVNcmkxRHRD YXMuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL21Xc1piOG84Y2hoeDdwNFVFNU1yaTFEdENhcy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTEx NjREMy8xNTUwNDhFQTMzODkxMUVGOTlGRDFDMjdDNEY5QUUwMi9tV3NaYjhvOGNo aHg3cDRVRTVNcmkxRHRDYXMubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQAhTBuephl9WebNO7YVt16LjLwwfmhSrAFF9+Y1jiYQ8z2MWe9UIn61 Wr5WvBv788dTL0eCLbxXcpaQJXZJuR1p3UB6bUF5v5hrtc/ugyAkTf/X+t6HDnUr 5pEYrRtic5GDW1IcwHiUgG5m4UtLD/tS6y48JE2X61u7r9UAxy0Twv2WUtES/B89 ifmTRxqoQ8D2fCaR9ty3xAdFWPPZ/QHkiViWo59gpRktIcHZWc2HbA3S6/fzUwFb expDahdPoDA7d8bse1FwoYhDIP2AFV1bpJWeJB1lfUdk/Y2YNOLGlsEBTiHLHpYc Vc8awHpcopC0alkC7ICAJrgchSVzojde -----END CERTIFICATE-----Generated at Fri Jul 4 18:57:16 2025 by rpki-client